HIDDEN THREATS
Security Advisor Middle East|May 2020
WITH THE INCREASING NUMBER OF EMPLOYEES BRINGING THEIR DEVICES TO WORK AND UTILISING NEW SOFTWARE SOLUTIONS AND CLOUD SERVICES TO BOOST PRODUCTIVITY, SHADOW IT IS BECOMING ONE OF THE MOST COMMON PROBLEMS COMPANIES FACE TODAY. SECURITY CORRESPONDENT DANIEL BARDSLEY SPEAKS TO INDUSTRY EXPERTS ON THE RISKS OF SHADOW IT AND HOW ORGANISATIONS CAN MITIGATE THEM.
HIDDEN THREATS

Matt Walmsley remembers well a meeting he was once in with the chief information security officer of a major company with thousands of employees.

The CISO, says Walmsley, who is head of EMEA marketing for the cybersecurity company Vectra, thought that there were seven to 10 logins for Office 365 in the company. In fact, there were 78.

“He was completely blindsided,” says Walmsley, adding that such lack of awareness of the IT assets in a company is “not unusual”.

This is the world of shadow IT, of applications and networks built up alongside the official assets of a company that are overseen by the main IT department and cybersecurity staff.

Departments sometimes want to buy their own IT assets or services in order to cut through bureaucracy and save time. But shortcuts may bring risks.

As Marco Rottigni, chief technical security officer EMEA at Qualys puts it, shadow IT can be “unknown, unmanaged, unprotected and potentially risky”.

“The teams that do the administration don’t have the skills, competence and knowledge to provide the security to mitigate these risks,” he says.

“This is why the security department exists, the compliance department exists.”

So, what are the security risks linked to shadow IT? Adam Palmer, the chief cybersecurity strategist at the cybersecurity company Tenable, says that lack of visibility is a key issue.

“Security teams often struggle to identify all assets connected to the corporate network. You can’t protect new devices if no one knows they are on the network. These assets may be insecure or obsolete,” he says.

The IT department’s various firewalls and other security devices may not be protecting shadow IT assets, and there is no guarantee that software updates and the like are regularly being installed.

Bu hikaye Security Advisor Middle East dergisinin May 2020 sayısından alınmıştır.

Start your 7-day Magzter GOLD free trial to access thousands of curated premium stories, and 8,500+ magazines and newspapers.

Bu hikaye Security Advisor Middle East dergisinin May 2020 sayısından alınmıştır.

Start your 7-day Magzter GOLD free trial to access thousands of curated premium stories, and 8,500+ magazines and newspapers.

SECURITY ADVISOR MIDDLE EAST DERGISINDEN DAHA FAZLA HIKAYETümünü görüntüle
KASPERSKY SHEDS LIGHT ON THE RANSOMWARE ECOSYSTEM
Security Advisor Middle East

KASPERSKY SHEDS LIGHT ON THE RANSOMWARE ECOSYSTEM

Ransomware is on the tip of everyone’s tongue every time businesses discuss cyber threats they are likely to face in 2021.

time-read
3 dak  |
May 2021
GAJSHIELD: ENABLING CONTEXTUAL VISIBILITY FOR OPTIMUM DATA PROTECTION
Security Advisor Middle East

GAJSHIELD: ENABLING CONTEXTUAL VISIBILITY FOR OPTIMUM DATA PROTECTION

HARRISON ALBERT, REGIONAL DIRECTOR, D-LINK MIDDLE EAST AND AFRICA, TELLS SECURITY ADVISOR MIDDLE EAST HOW GAJSHIELD’S CONTEXT-BASED APPROACH TO SECURITY HELPS ORGANISATIONS FIND ANOMALIES, REDUCE FALSE ALARM AND PREVENT INTENTIONAL & UNINTENTIONAL DATA EXPLOITATION.

time-read
3 dak  |
May 2021
THALES ANNOUNCES NEW SOLUTIONS TO HELP OGANISATIONS DISCOVER, PROTECT AND CONTROL SENSITIVE DATA IN MULTICLOUD ENVIRONMENTS
Security Advisor Middle East

THALES ANNOUNCES NEW SOLUTIONS TO HELP OGANISATIONS DISCOVER, PROTECT AND CONTROL SENSITIVE DATA IN MULTICLOUD ENVIRONMENTS

THALES HAS ANNOUNCED NEW DATA PROTECTION SOLUTIONS FOR GOOGLE CLOUD, MICROSOFT AZURE, AND AMAZON WEB SERVICES, SOLIDIFYING ITS ROLE AS A TRUSTED THIRD PARTY FOR MULTI-CLOUD DATA SECURITY.

time-read
3 dak  |
May 2021
RANSOMWARE RECOVERY COST FOR UAE IN 2021 IS $517,961: SOPHOS SURVEY
Security Advisor Middle East

RANSOMWARE RECOVERY COST FOR UAE IN 2021 IS $517,961: SOPHOS SURVEY

THE SURVEY POLLED 5,400 IT DECISION MAKERS IN MID-SIZED ORGANISATIONS IN 30 COUNTRIES ACROSS EUROPE, THE AMERICAS, ASIA-PACIFIC & CENTRAL ASIA, THE MIDDLE EAST, AND AFRICA.

time-read
5 dak  |
May 2021
OVERCOMING THE CYBER-PANDEMIC
Security Advisor Middle East

OVERCOMING THE CYBER-PANDEMIC

ABHIJIT MAHADIK, DIRECTOR, CYBERSECURITY & INFRASTRUCTURE – UAE & KSA, RAQMIYAT SPEAKS TO SAME ABOUT THE EVOLVING CYBERSECURITY LANDSCAPE, THE THREATS ORGANISATIONS NEED TO WATCH OUT FOR AND HOW THE SECURITY PRIORITIES OF ORGANISATIONS HAVE SHIFTED SINCE THE PANDEMIC LAST YEAR.

time-read
4 dak  |
May 2021
FORTINET: MAKING A MARK @ GISEC
Security Advisor Middle East

FORTINET: MAKING A MARK @ GISEC

ALAIN PENEL, REGIONAL VICE-PRESIDENT, MIDDLE EAST & PAKISTAN AT FORTINET, EXPLAINS WHAT IT MEANS TO BE A PART OF GISEC THIS YEAR AND HOW FORTINET’S CUTTING-EDGE SOLUTIONS CONTINUE TO PROVIDE MAXIMUM PROTECTION AGAINST CYBERTHREATS AND ATTACKS.

time-read
4 dak  |
May 2021
ANATOMY OF AN OT ATTACK
Security Advisor Middle East

ANATOMY OF AN OT ATTACK

MAHER JADALLAH, SENIOR DIRECTOR - MIDDLE EAST & NORTH AFRICA AT TENABLE, DISCUSSES HOW, INSTEAD OF DEFENDING AGAINST AN ATTACK IN PROGRESS, A MORE SUSTAINABLE APPROACH WOULD BE ONE OF PREVENTION – OF ORGANISATIONS DOING A BETTER JOB OF UNDERSTANDING THEIR SYSTEMS, WHERE AND HOW THOSE SYSTEMS MAY BE EXPOSED, AND PRIORITISING THE THINGS THEY NEED TO PROTECT THESE SYSTEMS.

time-read
7 dak  |
May 2021
MICRO FOCUS: OFFERING DRAMA-FREE IT WITH OPTIC
Security Advisor Middle East

MICRO FOCUS: OFFERING DRAMA-FREE IT WITH OPTIC

TOUFIC DERBASS, MANAGING DIRECTOR MICRO FOCUS MIDDLE EAST & AFRICA, DISCUSSES HOW THE LATEST IT PLATFORM FROM MICRO FOCUS OFFERS UNIFIED INTERFACE AND & EXPANDED INTEGRATION CAPABILITIES.

time-read
2 dak  |
May 2021
COPING WITH THE NEW NORMAL
Security Advisor Middle East

COPING WITH THE NEW NORMAL

HUSNI HAMMOUD, MANAGING DIRECTOR - ESET ME, BARRACUDA NETWORKS, IVANTI (PART OF MIDIS GROUP), TELLS SECURITY ADVISOR HOW THE CHALLENGES OF THE LAST ONE YEAR HAVE CHANGED THE BUSINESS LANDSCAPE AND HOW ORGANISATIONS ARE NAVIGATING NEW TRENDS.

time-read
3 dak  |
May 2021
AN IN-DEPTH DEFENCE STRATEGY
Security Advisor Middle East

AN IN-DEPTH DEFENCE STRATEGY

WERNO GEVERS, REGIONAL MANAGER, MIMECAST MIDDLE EAST, DISCUSSES HOW WHEN IT COMES TO EMAIL SECURITY, IT IS NECESSARY FOR SECURITY PROFESSIONALS TO EVOLVE FROM A PERIMETER-BASED DISCIPLINE TO A MORE PERVASIVE ONE.

time-read
4 dak  |
May 2021